Compilation results for cloudcontrol2006-dev.codfw.wmnet: None system changes detected

You can retrieve this result from host.json.

Catalog differences

Summary

Total Resources:	4083
Resources added:	30
Resources removed:	0
Resources modified:	30
Change percentage:	1.47%

Resources only in the new catalog

Nftables::Service[zookeeper]
Nftables::Service[full-monitoring-metrics-access-tcp]
Nftables::Service[octavia-amphora-healthcheck]
Nftables::Service[galera-cluster-tcp]
Nftables::Service[ssh-from-bastion]
Nftables::Service[galera-cluster-udp]
Nftables::Service[mdns-axfr-tcp]
Nftables::Service[octavia-amphora-healthcheck-udp]
Nftables::Service[memcached]
Nftables::Service[neutron-api-backend]
Nftables::Service[heat-api-backend]
Nftables::Service[designate-api-backend]
Nftables::Service[ssh-from-cumin-masters]
Nftables::Service[magnum-api-backend]
Nftables::Service[cinder-api-backend]
Nftables::Service[radosgw-api-backend]
Nftables::Service[placement-api-backend]
Nftables::Service[keystone-api-backend]
Nftables::Service[nova-metadata-backend]
Nftables::Service[bacula-file-daemon-backup1014.eqiad.wmnet]
Nftables::Service[glance-api-backend]
Nftables::Service[ssh-from-cloudcumin-masters]
Nftables::Service[nova-api-backend]
Nftables::Service[galera-backend]
Nftables::Service[rsyncd_access_keystonefernetkeys]
Nftables::Service[full-monitoring-metrics-access-udp]
Nftables::Service[octavia-api-backend]
Nftables::Service[barbican-api-backend]
Nftables::Service[trove-api-backend]
Nftables::Service[mdns-axfr-udp]

Resources modified

Nftables::Service[octavia-amphora-healthcheck-udp]

Parameters differences:

--- Nftables::Service[octavia-amphora-healthcheck-udp].orig
+++ Nftables::Service[octavia-amphora-healthcheck-udp]

+    prio                => 10
+    unrestricted_access => False
+    proto               => udp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['172.16.131.0/24', '2a02:ec80:a100:100::/64']
+    port                => 5555

Nftables::Service[ssh-from-bastion]

Parameters differences:

--- Nftables::Service[ssh-from-bastion].orig
+++ Nftables::Service[ssh-from-bastion]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['103.102.166.103', '185.15.58.6', '185.15.59.99', '195.200.68.99', '198.35.26.104', '2001:df2:e500:3:103:102:166:103', '208.80.153.110', '208.80.154.7', '2620:0:860:4:208:80:153:110', '2620:0:861:1:208:80:154:7', '2620:0:863:3:198:35:26:104', '2a02:ec80:300:3:185:15:59:99', '2a02:ec80:600:1:185:15:58:6', '2a02:ec80:700:3:195:200:68:99']
+    port                => 22

Nftables::Service[trove-api-backend]

Parameters differences:

--- Nftables::Service[trove-api-backend].orig
+++ Nftables::Service[trove-api-backend]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['172.20.5.3', '172.20.5.4', '172.20.5.5', '2a02:ec80:a100:205::3', '2a02:ec80:a100:205::4', '2a02:ec80:a100:205::5']
+    port                => 18779

Nftables::Service[barbican-api-backend]

Parameters differences:

--- Nftables::Service[barbican-api-backend].orig
+++ Nftables::Service[barbican-api-backend]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['172.20.5.3', '172.20.5.4', '172.20.5.5', '2a02:ec80:a100:205::3', '2a02:ec80:a100:205::4', '2a02:ec80:a100:205::5']
+    port                => 9312

Nftables::Service[mdns-axfr-udp]

Parameters differences:

--- Nftables::Service[mdns-axfr-udp].orig
+++ Nftables::Service[mdns-axfr-udp]

+    prio                => 10
+    unrestricted_access => False
+    proto               => udp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['172.20.5.2', '172.20.5.22', '172.20.5.7', '172.20.5.8', '172.20.5.9', '185.15.57.25', '185.15.57.26', '2a02:ec80:a100:205::2', '2a02:ec80:a100:205::22', '2a02:ec80:a100:205::7', '2a02:ec80:a100:205::8', '2a02:ec80:a100:205::9', '2a02:ec80:a100:4000::2', '2a02:ec80:a100:4000::3']
+    port                => 5354

Nftables::Service[full-monitoring-metrics-access-tcp]

Parameters differences:

--- Nftables::Service[full-monitoring-metrics-access-tcp].orig
+++ Nftables::Service[full-monitoring-metrics-access-tcp]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    port_range          => [1, 65535]
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['10.192.16.75', '10.192.32.67', '10.192.39.10', '10.192.9.11', '208.80.153.42', '208.80.154.78', '2620:0:860:102:10:192:16:75', '2620:0:860:103:10:192:32:67', '2620:0:860:10a:10:192:9:11', '2620:0:860:11e:10:192:39:10', '2620:0:860:2:208:80:153:42', '2620:0:861:3:208:80:154:78']

Nftables::Service[memcached]

Parameters differences:

--- Nftables::Service[memcached].orig
+++ Nftables::Service[memcached]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    ensure              => present
+    src_sets            => ['CLOUD_PRIVATE_NETWORKS']
+    desc                => 
+    notrack             => False
+    port                => 11211

Nftables::Service[galera-cluster-tcp]

Parameters differences:

--- Nftables::Service[galera-cluster-tcp].orig
+++ Nftables::Service[galera-cluster-tcp]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['172.20.5.2', '172.20.5.22', '172.20.5.7', '2a02:ec80:a100:205::2', '2a02:ec80:a100:205::22', '2a02:ec80:a100:205::7']
+    port                => [23306, 4567, 4568, 4444]

Nftables::Service[zookeeper]

Parameters differences:

--- Nftables::Service[zookeeper].orig
+++ Nftables::Service[zookeeper]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['172.20.5.2', '172.20.5.22', '172.20.5.7', '2a02:ec80:a100:205::2', '2a02:ec80:a100:205::22', '2a02:ec80:a100:205::7']
+    port                => [2181, 2182, 2183]

Nftables::Service[rsyncd_access_keystonefernetkeys]

Parameters differences:

--- Nftables::Service[rsyncd_access_keystonefernetkeys].orig
+++ Nftables::Service[rsyncd_access_keystonefernetkeys]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['172.20.5.2', '172.20.5.22', '172.20.5.7', '2a02:ec80:a100:205::2', '2a02:ec80:a100:205::22', '2a02:ec80:a100:205::7']
+    port                => [873, 1873]

Nftables::Service[mdns-axfr-tcp]

Parameters differences:

--- Nftables::Service[mdns-axfr-tcp].orig
+++ Nftables::Service[mdns-axfr-tcp]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['172.20.5.2', '172.20.5.22', '172.20.5.7', '172.20.5.8', '172.20.5.9', '185.15.57.25', '185.15.57.26', '2a02:ec80:a100:205::2', '2a02:ec80:a100:205::22', '2a02:ec80:a100:205::7', '2a02:ec80:a100:205::8', '2a02:ec80:a100:205::9', '2a02:ec80:a100:4000::2', '2a02:ec80:a100:4000::3']
+    port                => 5354

Nftables::Service[galera-cluster-udp]

Parameters differences:

--- Nftables::Service[galera-cluster-udp].orig
+++ Nftables::Service[galera-cluster-udp]

+    prio                => 10
+    unrestricted_access => False
+    proto               => udp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['172.20.5.2', '172.20.5.22', '172.20.5.7', '2a02:ec80:a100:205::2', '2a02:ec80:a100:205::22', '2a02:ec80:a100:205::7']
+    port                => 4567

Nftables::Service[cinder-api-backend]

Parameters differences:

--- Nftables::Service[cinder-api-backend].orig
+++ Nftables::Service[cinder-api-backend]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['172.20.5.3', '172.20.5.4', '172.20.5.5', '2a02:ec80:a100:205::3', '2a02:ec80:a100:205::4', '2a02:ec80:a100:205::5']
+    port                => 18776

Nftables::Service[magnum-api-backend]

Parameters differences:

--- Nftables::Service[magnum-api-backend].orig
+++ Nftables::Service[magnum-api-backend]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['172.20.5.3', '172.20.5.4', '172.20.5.5', '2a02:ec80:a100:205::3', '2a02:ec80:a100:205::4', '2a02:ec80:a100:205::5']
+    port                => 19511

Nftables::Service[ssh-from-cloudcumin-masters]

Parameters differences:

--- Nftables::Service[ssh-from-cloudcumin-masters].orig
+++ Nftables::Service[ssh-from-cloudcumin-masters]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['10.192.32.140', '10.64.48.148', '2620:0:860:103:10:192:32:140', '2620:0:861:107:10:64:48:148']
+    port                => 22

Nftables::Service[designate-api-backend]

Parameters differences:

--- Nftables::Service[designate-api-backend].orig
+++ Nftables::Service[designate-api-backend]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['172.20.5.3', '172.20.5.4', '172.20.5.5', '2a02:ec80:a100:205::3', '2a02:ec80:a100:205::4', '2a02:ec80:a100:205::5']
+    port                => 9001

Nftables::Service[nova-api-backend]

Parameters differences:

--- Nftables::Service[nova-api-backend].orig
+++ Nftables::Service[nova-api-backend]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['172.20.5.3', '172.20.5.4', '172.20.5.5', '2a02:ec80:a100:205::3', '2a02:ec80:a100:205::4', '2a02:ec80:a100:205::5']
+    port                => 18774

Nftables::Service[full-monitoring-metrics-access-udp]

Parameters differences:

--- Nftables::Service[full-monitoring-metrics-access-udp].orig
+++ Nftables::Service[full-monitoring-metrics-access-udp]

+    prio                => 10
+    unrestricted_access => False
+    proto               => udp
+    port_range          => [1, 65535]
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['10.192.16.75', '10.192.32.67', '10.192.39.10', '10.192.9.11', '208.80.153.42', '208.80.154.78', '2620:0:860:102:10:192:16:75', '2620:0:860:103:10:192:32:67', '2620:0:860:10a:10:192:9:11', '2620:0:860:11e:10:192:39:10', '2620:0:860:2:208:80:153:42', '2620:0:861:3:208:80:154:78']

Nftables::Service[octavia-api-backend]

Parameters differences:

--- Nftables::Service[octavia-api-backend].orig
+++ Nftables::Service[octavia-api-backend]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['172.20.5.3', '172.20.5.4', '172.20.5.5', '2a02:ec80:a100:205::3', '2a02:ec80:a100:205::4', '2a02:ec80:a100:205::5']
+    port                => 9876

Nftables::Service[radosgw-api-backend]

Parameters differences:

--- Nftables::Service[radosgw-api-backend].orig
+++ Nftables::Service[radosgw-api-backend]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['172.20.5.3', '172.20.5.4', '172.20.5.5', '2a02:ec80:a100:205::3', '2a02:ec80:a100:205::4', '2a02:ec80:a100:205::5']
+    port                => 18080

Nftables::Service[ssh-from-cumin-masters]

Parameters differences:

--- Nftables::Service[ssh-from-cumin-masters].orig
+++ Nftables::Service[ssh-from-cumin-masters]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    ensure              => present
+    src_sets            => ['CUMIN_MASTERS']
+    desc                => 
+    notrack             => False
+    port                => 22

Nftables::Service[glance-api-backend]

Parameters differences:

--- Nftables::Service[glance-api-backend].orig
+++ Nftables::Service[glance-api-backend]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['172.20.5.3', '172.20.5.4', '172.20.5.5', '2a02:ec80:a100:205::3', '2a02:ec80:a100:205::4', '2a02:ec80:a100:205::5']
+    port                => 19292

Nftables::Service[placement-api-backend]

Parameters differences:

--- Nftables::Service[placement-api-backend].orig
+++ Nftables::Service[placement-api-backend]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['172.20.5.3', '172.20.5.4', '172.20.5.5', '2a02:ec80:a100:205::3', '2a02:ec80:a100:205::4', '2a02:ec80:a100:205::5']
+    port                => 18778

Nftables::Service[neutron-api-backend]

Parameters differences:

--- Nftables::Service[neutron-api-backend].orig
+++ Nftables::Service[neutron-api-backend]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['172.20.5.3', '172.20.5.4', '172.20.5.5', '2a02:ec80:a100:205::3', '2a02:ec80:a100:205::4', '2a02:ec80:a100:205::5']
+    port                => 19696

Nftables::Service[galera-backend]

Parameters differences:

--- Nftables::Service[galera-backend].orig
+++ Nftables::Service[galera-backend]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['172.20.5.3', '172.20.5.4', '172.20.5.5', '2a02:ec80:a100:205::3', '2a02:ec80:a100:205::4', '2a02:ec80:a100:205::5']
+    port                => [23306, 9990]

Nftables::Service[keystone-api-backend]

Parameters differences:

--- Nftables::Service[keystone-api-backend].orig
+++ Nftables::Service[keystone-api-backend]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['172.20.5.3', '172.20.5.4', '172.20.5.5', '2a02:ec80:a100:205::3', '2a02:ec80:a100:205::4', '2a02:ec80:a100:205::5']
+    port                => [15000, 15357]

Nftables::Service[nova-metadata-backend]

Parameters differences:

--- Nftables::Service[nova-metadata-backend].orig
+++ Nftables::Service[nova-metadata-backend]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['172.20.5.3', '172.20.5.4', '172.20.5.5', '2a02:ec80:a100:205::3', '2a02:ec80:a100:205::4', '2a02:ec80:a100:205::5']
+    port                => 18775

Nftables::Service[heat-api-backend]

Parameters differences:

--- Nftables::Service[heat-api-backend].orig
+++ Nftables::Service[heat-api-backend]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['172.20.5.3', '172.20.5.4', '172.20.5.5', '2a02:ec80:a100:205::3', '2a02:ec80:a100:205::4', '2a02:ec80:a100:205::5']
+    port                => [18004, 18000]

Nftables::Service[octavia-amphora-healthcheck]

Parameters differences:

--- Nftables::Service[octavia-amphora-healthcheck].orig
+++ Nftables::Service[octavia-amphora-healthcheck]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['172.16.131.0/24', '2a02:ec80:a100:100::/64']
+    port                => 5555

Nftables::Service[bacula-file-daemon-backup1014.eqiad.wmnet]

Parameters differences:

--- Nftables::Service[bacula-file-daemon-backup1014.eqiad.wmnet].orig
+++ Nftables::Service[bacula-file-daemon-backup1014.eqiad.wmnet]

+    prio                => 10
+    unrestricted_access => False
+    proto               => tcp
+    ensure              => present
+    desc                => 
+    notrack             => False
+    src_ips             => ['10.64.183.10', '2620:0:861:13d:10:64:183:10']
+    port                => 9102

Compilation results for cloudcontrol2006-dev.codfw.wmnet: None system changes detected

Catalog differences

Summary

Resources only in the new catalog

Resources modified

Relevant files